PT-2019-11019 · Facebook · Whatsapp For Android+1

Publicado

2019-06-14

Atualizado

2025-09-03

CVE-2018-6339

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: WhatsApp for Android versions 2.18.180 through 2.18.294 WhatsApp Business for Android versions 2.18.103 through 2.18.149

Description: The issue arises from a stack allocation failure when receiving calls using WhatsApp on Android, specifically due to an off-by-one error that causes data to be written beyond the allocated space on the stack.

Recommendations: For WhatsApp for Android versions 2.18.180 through 2.18.294, update to version 2.18.295 or later. For WhatsApp Business for Android versions 2.18.103 through 2.18.149, update to version 2.18.150 or later.

Correção

Stack Overflow

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-121CWE-119

Identificadores relacionados

CVE-2018-6339

Produtos afetados

Whatsapp Business For Android

Whatsapp For Android

PT-2019-11019 · Facebook · Whatsapp For Android+1

CVE-2018-6339

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4